Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: ybDtFr8XYIPufySzCHYR51t0ABUXYySEvu4FQ/KVIr0=
Subject key identifier: 76:B5:87:35:78:32:A9:29:B7:58:99:C4:2A:D0:45:DF:E2:19:02:16
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 019D27E014736EF676EFF2AE39CC6AB7BFB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 02:01:29 +0000
Manifest this update: Thu 26 Mar 2026 02:01:29 +0000
Manifest next update: Fri 27 Mar 2026 02:01:29 +0000
Files and hashes: 1: QBinzFbTX8ICJKPb335BTjaNXKk.roa (hash: phGs/IfWO4O9NiG9zthPXCYOMupHdBQa3yN7pRaGe2k=)
2: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: no0PmPeAirHSSWexiab6xYVFJ/inbAriE/qSJMnA8h8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:14:73:6e:f6:76:ef:f2:ae:39:cc:6a:b7:bf:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Mar 26 02:01:29 2026 GMT
Not After : Mar 27 02:01:29 2026 GMT
Subject: CN=76b587357832a929b75899c42ad045dfe2190216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7b:9a:28:71:e6:ca:18:e6:33:5b:6f:ad:0d:
a3:0f:c7:44:c5:7b:a3:3b:4f:1b:46:e7:95:c6:85:
96:7f:f7:34:15:97:20:b9:2b:35:5d:29:b8:be:f5:
cc:ab:68:ec:e4:4f:df:86:af:6a:83:9a:85:f1:a7:
9f:48:01:f1:19:b1:d1:e0:dc:eb:cb:8f:89:26:6d:
1a:a0:cf:3b:5e:4f:de:05:80:b4:a9:50:7e:97:ef:
29:be:bd:ba:4a:a6:d9:5f:72:59:e6:c3:59:06:7d:
9a:8f:77:3e:65:73:7e:3a:bd:63:e2:0f:2e:88:55:
90:3d:8a:12:fa:71:f3:75:c4:de:ea:db:04:d8:b7:
83:82:49:2c:c8:a8:c3:ea:99:62:d3:c9:2c:e6:59:
66:2d:b0:ef:63:67:82:d3:67:0f:e4:56:71:52:00:
de:7f:73:70:e0:5f:2c:33:78:bd:0f:8c:12:a7:f4:
fd:34:d9:d4:01:d8:1b:3b:81:ed:e4:47:a7:c4:a0:
d1:f9:b5:3c:24:7e:48:a9:92:8e:38:9b:2c:70:3f:
4e:c0:79:8a:99:bd:6e:0e:8b:c1:49:a9:49:48:9f:
ba:19:8d:6e:8a:24:2b:3e:52:54:b4:35:6a:a0:8d:
c7:3b:29:0a:ea:04:2b:7e:60:5f:c3:ef:ed:2a:6e:
49:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B5:87:35:78:32:A9:29:B7:58:99:C4:2A:D0:45:DF:E2:19:02:16
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:ff:94:23:90:26:a1:fd:2f:70:5d:fa:8b:4c:2b:d6:0f:9f:
1b:9e:2b:76:d0:4e:9b:5c:1a:12:56:13:0d:3b:05:27:f9:41:
25:f6:2a:08:8a:cc:17:8f:1a:26:de:dc:8f:71:77:4b:c5:d5:
19:5f:2a:46:50:93:60:8a:90:97:fe:97:23:16:fe:c9:fc:2f:
ac:e9:c7:d5:5e:9b:d2:7b:79:58:3b:62:1b:ec:76:bd:c1:3f:
54:c3:c8:f6:82:06:02:3e:3b:98:63:8b:84:39:72:e2:f6:ae:
60:54:a5:79:0b:b0:be:ab:8f:59:7d:88:44:85:6c:56:58:22:
6c:cd:f2:bf:a5:26:e8:89:59:7d:03:01:90:45:35:83:46:88:
e5:28:21:3c:c4:54:0d:82:1c:80:55:b5:84:23:1a:6e:9e:b1:
06:48:6c:87:65:05:c4:b7:0e:4f:b0:34:57:ee:3b:a2:24:ce:
b7:bc:cd:3b:58:55:dd:1a:e3:e3:0f:a7:c3:df:df:27:37:ca:
8c:d4:a8:9b:2a:eb:a8:c7:0e:29:fa:d2:22:17:0c:39:54:56:
92:7b:7b:5b:0c:56:49:60:bc:96:e7:7e:81:fa:b3:19:29:ec:
28:c5:72:74:86:21:83:4a:50:93:3a:41:59:14:a5:6f:95:83:
64:1d:0b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:20:48 2026 by rpki-client